Oracle issues nearly 300 patches in quarterly update
Oracle is keeping people busy before the Easter weekend. The company has issued a raft of quarterly security updates for 297 …
VPN Vulnerabilities Point Out Need for Comprehensive Remote Security
“Encryption Everywhere” has become one of the rallying cries of enterprise security in the waning days of this millennium’s second …
Bug in EA’s Origin client left gamers open to attacks
Electronic Arts (EA) has fixed a security flaw in the Windows version of its gaming client Origin that allowed attackers to remotely …
Selecting the Right Strategy to Reduce Vulnerability Risk
While vulnerability management has been around for years, it remains a top issue for organizations. And while new vulnerability management …
A third-party patch for Microsoft’s Internet Explorer zero-day vulnerability
The news that Windows users could potentially be at risk from an Internet Explorer vulnerability (even if they didn’t use Internet …
It doesn’t matter if you don’t use Internet Explorer, you could still be at risk from this IE zero-day vulnerability
You might think that any security issues with Internet Explorer shouldn’t be much of a problem anymore. After all, most computer users …
Ad blocker firms rush to fix security bug
If you’re using an ad blocker to filter out online commercials, then beware: You might be vulnerable to a new attack revealed on Monday …
Internet Explorer browser flaw threatens all Windows users
Nearly four years after it was replaced by Edge as Microsoft’s preferred Windows browser, researchers keep finding unpleasant security …
297 Vulnerabilities Fixed with the Oracle Critical Patch Update
Oracle releases a collection of patches for multiple critical security vulnerabilities. The update contains 297 new security fixes across …
Cyber hygiene is at an all-time low
Well-known attacks and attack vectors remained successful because security personnel did not address vulnerabilities and apply patches …
Flood of exploits targetting ancient WinRAR flaw continues
Identified as CVE-2018-20250, an ancient WinRAR vulnerability made public in February is now well on its way to becoming one of the most …
Dragonblood: Data-leaking flaw in WPA3 Wi-Fi authentication
Researchers have discovered several holes in a new security protocol for wireless networks. It warrants patching because although no one …
Apache Tomcat Patches Important Remote Code Execution Flaw
The Apache Software Foundation (ASF) has released new versions of its Tomcat application server to address an important security …
Apache Tomcat Security Update for Remote Code Execution Vulnerability on Windows
Apache foundation has released security updates to address vulnerability with Apache Tomcat that allows a remote attacker to exploit the …
Optimize Algorithms to Support Kids Online, Not Exploit Them
This column is the second in a series about young people and screens. Read the first post, about connected parenting, …
Homeland Security issues vulnerability warning for leading enterprise VPNs
about the flaw, which is named VU#192371. The vulnerability has so far been found in enterprise VPN products from four …
DHS issues vulnerability warning for leading enterprise VPNs
Companies use virtual private networks to provide secure connections for employees who need to access work applications from outside the …
Vulnerability in WordPress related-posts plugin being actively exploited by hackers
A vulnerability in a popular related-sites WordPress plugin is being actively exploited with security researchers warning users to urgently …